Skip to main content
Radar
DashboardThreatsMapFeedsAPI
reconnecting

CVE-2025-28975: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in redqteam Alike - WordPress Custom Post Comparison

High
VulnerabilityCVE-2025-28975cvecve-2025-28975cwe-79
Published: Thu Aug 14 2025 (08/14/2025, 10:34:34 UTC)
Source: CVE Database V5
Vendor/Project: redqteam
Product: Alike - WordPress Custom Post Comparison

Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in redqteam Alike - WordPress Custom Post Comparison allows Reflected XSS. This issue affects Alike - WordPress Custom Post Comparison: from n/a through 3.0.1.

Technical Details

Data Version
5.1
Assigner Short Name
Patchstack
Date Reserved
2025-03-11T08:10:36.160Z
Cvss Version
3.1
State
PUBLISHED

Threat ID: 689dbee0ad5a09ad0059e565

Added to database: 8/14/2025, 10:48:00 AM

Last updated: 8/14/2025, 10:48:00 AM

Views: 1

Related Threats

CVE-2025-8957: SQL Injection in Campcodes Online Flight Booking Management System

Medium
VulnerabilityThu Aug 14 2025

CVE-2025-54707: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in RealMag777 MDTF

Critical
VulnerabilityThu Aug 14 2025

CVE-2025-54706: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Noor Alam Magical Posts Display

Medium
VulnerabilityThu Aug 14 2025

CVE-2025-54705: CWE-862 Missing Authorization in magepeopleteam WpEvently

Medium
VulnerabilityThu Aug 14 2025

CVE-2025-54704: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in hashthemes Easy Elementor Addons

Medium
VulnerabilityThu Aug 14 2025

Actions

Please log in to the Console to use AI analysis features.

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Latest Threats